Organizations that lack the resources to build their own incident response programs can now pay Microsoft for highly specialized response and recovery services if they're hit with a cyber attack.The software giant announced March 27 that it’s expanding general availability of its Microsoft Response Retainer service, which provides prepaid blocks of hours for incident response and recovery.The service, designed to work with cyber insurance vendors, is contracted on an annual basis and the retainer hours can be used for proactive and reactive services, Microsoft wrote on its security blog.Microsoft is partnering with over 30 different providers, and the retainer service includes a security delivery manager to schedule services throughout the year of the contract, as well as incident response during an attack, threat investigations, recovery and employee readiness testing. Cyber incidents cost companies that are unprepared to respond to a cyber incident an average of $4.3 million in 2022, compared with $3.05 million for organizations with incident response and AI automation, according to Microsoft. The average breach in just the U.S. is even more expensive, $9.44 million, while recovery was only $1.3 million.Companies with proactive measures also detected breaches more quickly (249 days) than those without support (323 days).According to the FBI’s recently released 2022 Internet Crime Report, the potential loss reported to its Internet Crime Complaint Center increased to over $10.2 billion from $6.9 billion in 2021, despite a slight decrease in the number of reported complaints.
Security Program Controls/Technologies, Managed Services
Microsoft expands Incident Response Retainer service; unveils AI-driven security product

Microsoft announced expanded availability for its incident response service, as well as an AI-powered security product. (Adobe Stock Photos)
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds